08-06-2012 05:28 PM
HI,
I have configured Cisco ACE 4710 in one-arm mode(physically it is in DMZ segment). I have to load balance OWA servers using ACE, these servers are physically on inside of firewall.
Now, the load balancer is working fine with one arm mode and source nat. I got a requirement from client that, they need to terminate SSL connections in ace , then ace to servers should be clear text (SSL OFFLOADING).
Please anyone suggest me, if there any limitations in SSL offloading with one arm mode??? if not, how can i confiugre SSL termination??
Hope your expert reply.
Solved! Go to Solution.
08-06-2012 05:47 PM
Hi,
The limitation of One ARM with SRC NAT is you will loose the client information. Server logs will show the connections initiated from NAT IP Pool configured on ACE.
Please refer below link for sample SSL termination config:
Regards,
Siva
08-06-2012 05:47 PM
Hi,
The limitation of One ARM with SRC NAT is you will loose the client information. Server logs will show the connections initiated from NAT IP Pool configured on ACE.
Please refer below link for sample SSL termination config:
Regards,
Siva
08-07-2012 06:06 AM
Thank you Siva, its working now
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide